Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=servedr.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AD:7D:BC:56:02:31:41:19:F5:EE:AA:F4:43:49:C2:DB:4E:EC:50:1C:41:7B:45:E8:2B:5C:71:4C:F9:30:7D:30
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
datascienceinsights.org
albinlandgren.com
aminoapps.dev
annemeije.nl
liven.energia.app.br
baraotraining.co.uk
fwdultimatesaving12-6registrationform.brsth.com
www.camm.mx
chatapp1.site
chouhanimmigrationservice.com
www.clf-mos.ru
www.beachcam.co.il
www.ozturkmakina.com.tr
futbol.comounexperto.com
sillas.comounexperto.com
www.crafteam.ro
deeplink.leuven.delcom.nl
demondre.dev
cursofirebase.desarrolloweb.es
v2-staging.digiqc.com
www.divinecaremn.org
erlendbrodal.com
ctg.experiscolombia.com
password.exploradogs.com
b2b.fenix.parts
filmbase.dev
freakings.band
pl.futurecoder.io
trainer.gallarotti.net
gotisoft.com
dev-admin.hairmake-theater.com
recipes.higgins.dev
www.highdreamz.co.uk
resultados.indumuebles.hn
jmdiaz.dev
jordanseacompany.com
jpsclub.com
app.keeportoss.com
admin.dev.klarcommunity.com
storycorps.preview.app.konch.ai
leslionsdeflandre.com
www.lifeistechafrica.com
www.likiddesign.com
rc.app.livekid.pl
lotsa.games
www.lucchesi.nl
luqmansaeed.com
dev.sauver.med.br
admin-testing.meetgo.vn
auth.meuportfol.io
demo.michele40.it
www.myexpense.io
www.myjd.link
www.nyo.ooo
offiprim.com
gtd.omasoftware.com
vellore.onewaydroptaxie.com
www.alamara.org.in
mint.paperpeople.io
parosplanning.site
pixelsquirrel.co.uk
stage.plantedpeople.com
app.propme.de
www.psinfraworld.com
qmeq.me
console.rcloud.dev
clientes.recora.mx
redez.io
open-platform.richku.com
admin.rowcave.com
carrier.rxoconnectuat.rxo.com
www.saythanku.org
familyapp.schnoetz.dev
recipie.scottysseus.me
www.senkimsin.xyz
servedr.com
sfcommerce.it
sherigo.com
silvercrown.vip
sinanakstudent.site
staff.dev10.skool.sg
walten.soklan.com
app.solerax.io
www.studease.app
syntheticanimal.com
retailpharma.techcompose.com
www.theexpeditionscompany.com
test.thoughtafter.com
tomhibbers.com
travdar.com
truckvisit.com
turongtek.com
www.live.ubunifucollege.com
www.unsick.in
scoreboard.vitterso.net
www.app.beta.wantic.io
ics.wofford-ecs.org
like.app.ws.agency
www.ymmvdeal.com
yokomotod.dev
Other domains in certificate